Bug 187751 - Getting rid of su(pam_unix) console messages
Getting rid of su(pam_unix) console messages
Product: Red Hat Enterprise Linux 4
Classification: Red Hat
Component: pam (Show other bugs)
All Linux
medium Severity medium
: ---
: ---
Assigned To: Tomas Mraz
Jay Turner
Depends On:
  Show dependency treegraph
Reported: 2006-04-03 10:14 EDT by Dag Wieers
Modified: 2015-01-07 19:12 EST (History)
1 user (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2006-04-03 11:00:36 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Dag Wieers 2006-04-03 10:14:36 EDT
Description of problem:
Our console has lots of messages like:

  su(pam_unix)[5854]: session closed for user dag                              
  su(pam_unix)[5974]: session opened for user dag by (uid=0)

And for security reasons we don't want to have these on the screen. We don't
want to disclose what users exist on a system.

Since we disabled syslogd/klogd and we still get these messages, they have to
come from pam_unix directly ?

Is there a way to disable this, I haven't been able to find how though.

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
Actual results:

Expected results:

Additional info:
Comment 1 Tomas Mraz 2006-04-03 11:00:36 EDT
Since you have stopped the syslogd daemon and pam_unix uses LOG_CONS flag when
logging, the messages which would go to the system log are written on console
instead. This is normal behaviour. You can either remove 'session ....
pam_unix.so' from the /etc/pam.d/system_auth configuration or just run the
syslogd to prevent this behaviour.

Note that the session part of the pam_unix module doesn't have any other purpose
than logging these messages so removing it is harmless if you don't want to get

Note You need to log in before you can comment on or make changes to this bug.